SSL Certificate Analysis for synexscripts.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=home999.cc

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 08, 2026

Valid Until

July 07, 2026 30 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

11:F6:EB:80:37:D0:EF:5E:9B:40:BA:97:6E:FD:28:ED:E6:D5:21:40:E6:73:8A:A4:B0:7F:D3:07:99:96:9A:5E

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

synexscripts.com *.synexscripts.com *.2fwww.synexscripts.com *.fwww.synexscripts.com *.mail.synexscripts.com

Other domains in certificate

141.life *.141.life *.hlw.141.life

2ni.shop *.2ni.shop

7dav50.xyz *.7dav50.xyz *.sitemaps.7dav50.xyz *.wildcard.7dav50.xyz *.ww1.7dav50.xyz *.ww25.7dav50.xyz

auto-klinik-lb.de *.auto-klinik-lb.de *.fb.auto-klinik-lb.de *.g.auto-klinik-lb.de *.insta.auto-klinik-lb.de *.wa.auto-klinik-lb.de

babyloves.it *.babyloves.it *.remote.babyloves.it

blackwire.it *.blackwire.it *.hostmaster.blackwire.it *.mx.blackwire.it *.remote.blackwire.it

btminer.pro *.btminer.pro

c289.vip *.c289.vip *.ffffffffffff.c289.vip

cg969r.com *.cg969r.com *.ww36.cg969r.com

esport.studio *.esport.studio *.hostmaster.esport.studio

hairyjuicycunts.xyz *.hairyjuicycunts.xyz *.node.hairyjuicycunts.xyz

*.blog.home999.cc *.frp.home999.cc home999.cc *.home999.cc *.mysql.home999.cc *.w.home999.cc

*.chat.lujopaisa.com lujopaisa.com *.lujopaisa.com

maidtotheperfection.com *.maidtotheperfection.com

makenakkue.com *.makenakkue.com

mindfields.live *.mindfields.live

myriad.bet *.myriad.bet

naza555.life *.naza555.life *.www.naza555.life

phimvietsub.cc *.phimvietsub.cc *.ww17.phimvietsub.cc

*.admin.retrovintage.it *.analytic.retrovintage.it *.analytics.retrovintage.it *.api.retrovintage.it *.console.retrovintage.it *.dashboard.retrovintage.it *.development.retrovintage.it *.hostmaster.retrovintage.it *.mail.retrovintage.it *.report.retrovintage.it retrovintage.it *.retrovintage.it

reward24k.com *.reward24k.com

*.mail.toxinfree.org toxinfree.org *.toxinfree.org

uscsbill.com *.uscsbill.com

videoviral.store *.videoviral.store

wwwuhcmemberhub.com *.wwwuhcmemberhub.com